| Supported by internet/intranet technology, modern Office Automation (OA) system enables users sharing information expressly, organizing projects efficiently. In short, it makes effective cooperation, fast information collection and procession possible.An efficient OA environment will not only allow information distribution swiftly and accurately therefore optimized resources utilization, but also enable users and work units handle complex projects which requires highly organized managements from different geographical location.By electronic automation, an advanced OA system could free users from tedious manual routines as well as repetitive, backbreaking errands; consequently it drastically enhanced efficiency of office work, decreases the operation budget, and optimized the office environment ready for organizing managerial operation and making executive decision.With rapid improvement of information technology and requirements for standardizing operation procedure, improvement of management, and information sharing, demands on highly effective OA system are increasing in an enterprise.Since OA system is a highly specialized network. In other word, it is a closed and protected network which only connected whole working area, however, it isolated from other networks as well as internet. According to national security regulations, OA must capable to secure classified information and prevent information leaking. Thus, the designing and building of OA system must follow the rules of information security.The main concern of the paper is information security of a PPP (P-POT-PDRR) based OA system. The PPP model is an information security model in which IATF is core, PDRP is foundation, and protection at various levels is basic requirement. With IATF core and PDRP structure, PPP model is capable to protect physical, operative, and information security which required by BMB17. In this paper, firstly, the basic construct of OA is introduced. Then the requirements of network security are presently and analyzed. Also the designing and planning of security are presented. The key concerns are related to information security, for instance; confirmation of identification, regulation on access, code protection, and protection against electro-magneto radiation leaking, examination on system safety, security checking and monitoring, safety of operation system, safety of application system, safety of data, interface protection and control. Finally, to meet the information security requirements of OA system, the key components are analyzed and tested. |
PDF Full Text Request